Oracle Linux 8 : systemd (ELSA-2023-0100)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2023-0100 advisory. 239-68.0.2.1 - Backport upstream pstore dmesg fix Orabug: 34850699 - Standardize ioctl BTRFSIOCQGROUPCREATE check and return -ENOTCONN, if quota is not enabled...

The vulnerability of the Graphics component in operating systems such as Mac OS, iOS, iPadOS, tvOS, watchOS, and the iCloud for Windows service allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the Graphics component in operating systems such as Mac OS, iOS, iPadOS, tvOS, watchOS, and the iCloud for Windows service is related to writing beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protecte...

systemd: buffer overrun in format_timespan() function

An off-by-one error flaw was found in systemd in the formattimespan function of time-util.c. This flaw allows an attacker to supply specific values for time and accuracy, leading to a buffer overrun in formattimespan, leading to a denial of service...

RHEL 8 : systemd (RHSA-2023:0100)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2023:0100 advisory. The systemd packages contain systemd, a system and service manager for Linux, compatible with the SysV and LSB init scripts. It provides aggressive...

ALSA-2023:0100 Moderate: systemd security and bug fix update

The systemd packages contain systemd, a system and service manager for Linux, compatible with the SysV and LSB init scripts. It provides aggressive parallelism capabilities, uses socket and D-Bus activation for starting services, offers on-demand starting of daemons, and keeps track of processes...

Moderate: systemd security and bug fix update

The systemd packages contain systemd, a system and service manager for Linux, compatible with the SysV and LSB init scripts. It provides aggressive parallelism capabilities, uses socket and D-Bus activation for starting services, offers on-demand starting of daemons, and keeps track of processes...

The vulnerability of the implementation of TLS and SSL software from Mbed TLS allows a attacker to rewrite data in the memory buffer and restore the encrypted RSA key.

The vulnerability of the implementation of TLS and SSL software from Mbed TLS relates to the possibility of writing data beyond the buffer boundaries. Exploiting this vulnerability allows a malicious actor to rewrite data into the memory buffer and restore the encrypted RSA key...

Huawei EulerOS: Security Advisory for systemd (EulerOS-SA-2023-1139)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Huawei EulerOS: Security Advisory for systemd (EulerOS-SA-2023-1115)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

EulerOS 2.0 SP9 : systemd (EulerOS-SA-2023-1115)

According to the versions of the systemd packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - An off-by-one Error issue was discovered in Systemd in formattimespan function of time-util.c. An attacker could supply specific values for tim...

EulerOS 2.0 SP11 : systemd (EulerOS-SA-2023-1048)

According to the versions of the systemd packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - An off-by-one Error issue was discovered in Systemd in formattimespan function of time-util.c. An attacker could supply specific values for tim...

The vulnerability of the Dynamic Access Control Function Implementation in Microprogrammable Network Interface Cards from Cisco Adaptive Security Appliance (ASA) and Cisco Firepower Threat Defense (FTD) arises from the possibility of an operation leaving the buffer boundary into memory, allowing a attacker to cause a service failure.

The vulnerability of the Dynamic Access Control Function Implementation in Cisco Adaptive Security Appliance ASA and Cisco Firepower Threat Defense FTD systems is related to an operation that goes beyond the buffer in memory. Exploiting this vulnerability could allow a malicious actor to cause...

CVE-2022-42262

NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager vGPU plugin, where an input index is not validated, which may lead to buffer overrun, which in turn may cause data tampering, information disclosure, or denial of service...

CVE-2022-42261

NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager vGPU plugin, where an input index is not validated, which may lead to buffer overrun, which in turn may cause data tampering, information disclosure, or denial of service...

DEBIAN-CVE-2022-42261

NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager vGPU plugin, where an input index is not validated, which may lead to buffer overrun, which in turn may cause data tampering, information disclosure, or denial of service...

CVE-2022-42262

NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager vGPU plugin, where an input index is not validated, which may lead to buffer overrun, which in turn may cause data tampering, information disclosure, or denial of service...

CVE-2022-42261

NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager vGPU plugin, where an input index is not validated, which may lead to buffer overrun, which in turn may cause data tampering, information disclosure, or denial of service...

DEBIAN-CVE-2022-42262

NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager vGPU plugin, where an input index is not validated, which may lead to buffer overrun, which in turn may cause data tampering, information disclosure, or denial of service...

CVE-2022-42261

NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager vGPU plugin, where an input index is not validated, which may lead to buffer overrun, which in turn may cause data tampering, information disclosure, or denial of service...

Design/Logic Flaw

NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager vGPU plugin, where an input index is not validated, which may lead to buffer overrun, which in turn may cause data tampering, information disclosure, or denial of service...